In the Claims 



This listing of claims will replace all prior versions, and listings of claims in the 
application. Applicant has submitted a new complete claim set showing the claims as 
pending and no amendments are requested at this time. 

1 . (Previously Presented) A method for a mobile computing device to make 
authentication information available to a base computing device, the method 
comprising: 

creating authentication information, the authentication information including 
content data that include data for updating a care-of address of the mobile computing 
device, a public key of the mobile computing device, a network address of the mobile 
computing device, and a digital signature, the network address having a portion derived 
from the public key of the mobile computing device, the digital signature generated by 
signing with a private key of the mobile computing device corresponding to the public 
key, the digital signature generated from data in the set: the content data, a hash value 
of data including the content data; and 

making the authentication information available to the base computing device. 

2. (Previously Presented) A method as in claim 1 wherein the authentication 
information is made available to the base computing device by sending a message 
incorporating the authentication information to the base computing device. 

3. (Canceled) 

4. (Canceled) 
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5. (Previously Presented) A method as in claim 1 , wherein the base computing 
device is a home agent for the mobile computing device, and wherein the network 
address of the mobile computing device is a home address of the mobile computing 
device. 

6. (Previously Presented) A method as in claim 1 , wherein the base computing 
device is a correspondent of the mobile computing device, and wherein the network 
address of the mobile computing device is a home address of the mobile computing 
device. 

7. (Original) A method as in claim 1 , wherein the public key and the private key 
together form an uncertified key pair. 

8. (Previously Presented) A method as in claim 1 , wherein the network address 
of the mobile computing device includes a route prefix portion and a node-selectable 
portion, and the node-selectable portion includes a portion of a hash value of data 
including the public key of the mobile computing device. 

9. (Previously Presented) A method as in claim 8, wherein the node-selectable 
portion includes a portion of a hash value of data including the public key of the mobile 
computing device and a modifier selected for preventing address conflicts. 

1 0. (Original) A method as in claim 1 , wherein the authentication information 
further includes data for preventing a replay attack. 
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1 1 . (Original) A method as in claim 1 0, wherein the data for preventing a replay 
attack are in the set: time stamp, data identifying the second computing device as an 
intended recipient of the authentication information. 

12. (Previously Presented) A computer-readable medium containing instructions 
for performing a method for a first computing device to make authentication 
information available to a second computing device, the method comprising: 

creating authentication information, the authentication information including 
content data that include data for updating a care-of address of the first computing 
device, a public key of the first computing device, a network address of the first 
computing device, and a digital signature, the network address having a portion derived 
from the public key of the first computing device, the digital signature generated by 
signing with a private key of the first computing device corresponding to the public key, 
the digital signature generated from data in the set: the content data, a hash value of 
data including the content data; and 

making the authentication information available to the second computing device. 

1 3. (Previously Presented) A computer-readable medium having stored thereon 
a data structure, the data structure comprising: 

content data that include data for updating a care-of address of a computing 

device; 

a public key of the computing device; 

a network address of the computing device, the network address having a 
portion derived from the public key of the computing device; and 

a digital signature, the digital signature generated by signing with a private key 

of the computing device corresponding to the public key, the digital signature generated 

from data in the set: the content data, a hash value of data including the content data. 

Type of Response: Non-Final Response 

Application Number: 09/833,922 
Attorney Docket Number: 1 71 1 35.01 
Filing Date: 04/12/2001 

4/10 



14. (Canceled) 



15. (Canceled) 

1 6. (Previously Presented) A data structure as in claim 1 3, wherein the network 
address of the computing device is a home address of the computing device. 

1 7. (Original) A data structure as in claim 1 3, wherein the network address of 
the computing device includes a route prefix portion and a node-selectable portion, and 
the node-selectable portion includes a portion of a hash value of data including the 
public key of the computing device. 

1 8. (Original) A data structure as in claim 1 7, wherein the node-selectable 
portion includes a portion of a hash value of data including the public key of the 
computing device and a modifier selected for preventing address conflicts. 

1 9. (Original) A data structure as in claim 1 3, wherein the data structure further 
includes data for preventing a replay attack. 

20. (Original) A method for a second computing device to authenticate content 
data made available by a first computing device, the method comprising: 

accessing authentication information made available by the first computing 
device, the authentication information including the content data, a public key of the 
first computing device, a first network address of the first computing device, and a 
digital signature; 
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deriving a portion of a second network address from the public key of the first 
computing device; 

validating the digital signature by using the public key of the first computing 

device; 

accepting the content data if the derived portion of the second network address 
matches a corresponding portion of the first network address and if the validating 
shows that the digital signature was generated from data in the set: the content data, a 
hash value of data including the content data. 

21 . (Original) A method as in claim 20, further comprising: 

determining whether to accept the content data based on a time stamp in the 
authentication information. 

22. (Original) A method as in claim 20, wherein the content data include data for 
updating a communications parameter for the first computing device, the method 
further comprising: 

updating a record of a communications parameter for the first computing device. 

23. (Original) A method as in claim 22, wherein the communications parameter 
is a care-of address of the first computing device, and wherein updating includes 
updating a routing table maintained by the second computing device. 

24. (Original) A method as in claim 20, wherein the authentication information 
further includes a modifier, and wherein deriving includes appending the modifier to the 
public key of the first computing device before deriving a portion of the second network 
address. 
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25. (Original) A computer-readable medium containing instructions for 
performing a method for a second computing device to authenticate content data made 
available by a first computing device, the method comprising: 

accessing authentication information made available by the first computing 
device, the authentication information including the content data, a public key of the 
first computing device, a first network address of the first computing device, and a 
digital signature; 

deriving a portion of a second network address from the public key of the first 
computing device; 

validating the digital signature by using the public key of the first computing 

device; 

accepting the content data if the derived portion of the second network address 
matches a corresponding portion of the first network address and if the 
validating shows that the digital signature was generated from data in the set: 
the content data, a hash value of data including the content data. 
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